Tychesoftwares Order_delivery_date_for_woocommerce

4 CVEs affecting Tychesoftwares Order_delivery_date_for_woocommerce. Latest disclosed: 2025-07-11. Critical: 0, High: 2.

Top CVEs affecting Tychesoftwares Order_delivery_date_for_woocommerce
CVESeverityScorePublishedSummary
CVE-2025-2929High7.12025-05-20The Order Delivery Date WordPress plugin before 12.4.0 does not sanitise and escape a parameter before outputting it back in the page, leading to a Reflected C…
CVE-2023-41874High7.12023-09-25Unauth. Reflected Cross-Site Scripting (XSS) vulnerability in Tyche Softwares Order Delivery Date for WooCommerce plugin <= 3.20.0 versions.
CVE-2025-2942Medium4.32025-07-11The Order Delivery Date WordPress plugin before 12.6.0 discloses arbitrary post title (such as from draft and private posts) via an unauthenticated AJAX action…
CVE-2023-41858Medium4.32023-10-10Cross-Site Request Forgery (CSRF) vulnerability in Ashok Rane Order Delivery Date for WP e-Commerce plugin <= 1.2 versions.